ID CVE-2016-5011
Summary The parse_dos_extended function in partitions/dos.c in the libblkid library in util-linux allows physically proximate attackers to cause a denial of service (memory consumption) via a crafted MSDOS partition table with an extended partition boot record at zero offset.
References
Vulnerable Configurations
  • cpe:2.3:a:util-linux_project:util-linux
    cpe:2.3:a:util-linux_project:util-linux
  • RedHat Enterprise Linux Desktop 7.0
    cpe:2.3:o:redhat:enterprise_linux_desktop:7.0
  • RedHat Enterprise Linux HPC Node 7.0
    cpe:2.3:o:redhat:enterprise_linux_hpc_node:7.0
  • RedHat Enterprise Linux Server 7.0
    cpe:2.3:o:redhat:enterprise_linux_server:7.0
  • RedHat Enterprise Linux Workstation 7.0
    cpe:2.3:o:redhat:enterprise_linux_workstation:7.0
  • IBM PowerKVM 2.1
    cpe:2.3:a:ibm:powerkvm:2.1
  • IBM PowerKVM 3.1
    cpe:2.3:a:ibm:powerkvm:3.1
  • cpe:2.3:a:ibm:power_hardware_management_console:8.8.6.0
    cpe:2.3:a:ibm:power_hardware_management_console:8.8.6.0
CVSS
Base: 4.7 (as of 16-04-2017 - 19:42)
Impact:
Exploitability:
CWE CWE-399
CAPEC
Access
VectorComplexityAuthentication
LOCAL MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE COMPLETE
redhat via4
advisories
bugzilla
id 1349741
title CVE-2016-5011 util-linux: Extended partition loop in MBR partition table leads to DOS
oval
AND
  • OR
    • comment Red Hat Enterprise Linux 7 Client is installed
      oval oval:com.redhat.rhsa:tst:20140675001
    • comment Red Hat Enterprise Linux 7 Server is installed
      oval oval:com.redhat.rhsa:tst:20140675002
    • comment Red Hat Enterprise Linux 7 Workstation is installed
      oval oval:com.redhat.rhsa:tst:20140675003
    • comment Red Hat Enterprise Linux 7 ComputeNode is installed
      oval oval:com.redhat.rhsa:tst:20140675004
  • OR
    • AND
      • comment libblkid is earlier than 0:2.23.2-33.el7
        oval oval:com.redhat.rhsa:tst:20162605009
      • comment libblkid is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20130517010
    • AND
      • comment libblkid-devel is earlier than 0:2.23.2-33.el7
        oval oval:com.redhat.rhsa:tst:20162605015
      • comment libblkid-devel is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20130517014
    • AND
      • comment libmount is earlier than 0:2.23.2-33.el7
        oval oval:com.redhat.rhsa:tst:20162605013
      • comment libmount is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20162605014
    • AND
      • comment libmount-devel is earlier than 0:2.23.2-33.el7
        oval oval:com.redhat.rhsa:tst:20162605019
      • comment libmount-devel is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20162605020
    • AND
      • comment libuuid is earlier than 0:2.23.2-33.el7
        oval oval:com.redhat.rhsa:tst:20162605011
      • comment libuuid is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20130517008
    • AND
      • comment libuuid-devel is earlier than 0:2.23.2-33.el7
        oval oval:com.redhat.rhsa:tst:20162605005
      • comment libuuid-devel is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20130517012
    • AND
      • comment util-linux is earlier than 0:2.23.2-33.el7
        oval oval:com.redhat.rhsa:tst:20162605007
      • comment util-linux is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20162605008
    • AND
      • comment uuidd is earlier than 0:2.23.2-33.el7
        oval oval:com.redhat.rhsa:tst:20162605017
      • comment uuidd is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20130517016
rhsa
id RHSA-2016:2605
released 2016-11-03
severity Low
title RHSA-2016:2605: util-linux security, bug fix, and enhancement update (Low)
rpms
  • libblkid-0:2.23.2-33.el7
  • libblkid-devel-0:2.23.2-33.el7
  • libmount-0:2.23.2-33.el7
  • libmount-devel-0:2.23.2-33.el7
  • libuuid-0:2.23.2-33.el7
  • libuuid-devel-0:2.23.2-33.el7
  • util-linux-0:2.23.2-33.el7
  • uuidd-0:2.23.2-33.el7
refmap via4
bid 91683
confirm
mlist [oss-security] 20160711 CVE-2016-5011: util-linux: Extended partition loop in MBR partition table leads to DoS
sectrack 1036272
Last major update 17-04-2017 - 12:50
Published 11-04-2017 - 11:59
Back to Top